$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/FA3B5DCAF7A011EEBAC1E03BC4F9AE02.roa File: FA3B5DCAF7A011EEBAC1E03BC4F9AE02.roa (raw, json) Hash identifier: SiXu7T2X5Ai2mQId/ZQnSVGAYrsHoSW8pzAzpHcsuBY= Subject key identifier: 53:0E:A9:FD:B2:85:71:91:EC:57:07:5D:77:07:2D:BC:16:73:AD:98 Certificate issuer: /CN=A91A5849/serialNumber=536BF8DDCE802667378F47BD4954A90B7C7009C1 Certificate serial: 04 Authority key identifier: 53:6B:F8:DD:CE:80:26:67:37:8F:47:BD:49:54:A9:0B:7C:70:09:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/FA3B5DCAF7A011EEBAC1E03BC4F9AE02.roa Signing time: Thu 11 Apr 2024 01:15:26 +0000 ROA not before: Thu 11 Apr 2024 01:15:26 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 16509 IP address blocks: 202.37.173.0/24 maxlen: 24 2001:df3:aac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.crl rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5849 Validity Not Before: Apr 11 01:15:26 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=661739ae-97b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:94:56:c5:4c:11:2b:53:56:6f:be:f5:15:5b: f7:74:98:a3:0a:6e:f0:b0:0b:ab:91:7c:89:5d:95: 95:21:67:66:44:8a:0d:22:73:52:8a:ad:b1:93:73: 74:bd:df:0e:a1:91:f5:db:ba:65:14:3d:e3:b0:ca: c5:d9:ed:21:dd:d7:aa:0b:92:ae:32:54:99:a7:88: 73:05:87:c7:7c:a2:6a:56:ac:c6:e2:b2:d2:18:9e: 01:52:2e:3d:cc:ff:24:15:f9:90:10:fb:05:09:d7: 6e:ea:81:7e:0a:b9:d0:55:a4:f7:5c:f5:5b:2f:13: 49:e3:d7:79:03:a1:31:a1:ed:40:61:3d:24:12:a6: 36:35:b6:bd:ca:9c:0f:62:7c:19:66:71:a6:f4:a9: b8:2a:e3:58:1d:67:78:ef:38:e6:a3:97:c6:20:16: 26:c6:45:57:fe:ef:06:8a:8f:f4:35:8f:5d:1f:dc: 53:7d:fe:76:9d:5f:fb:b0:42:e7:e1:eb:6d:94:5e: 6d:94:f2:1e:01:26:89:48:ab:9a:f2:29:63:de:16: eb:2b:d7:1e:9a:1c:23:cc:f8:f7:ac:48:31:44:b5: 42:37:32:cc:58:23:5b:08:2e:61:fa:8b:9f:50:15: d0:f6:55:90:bb:be:a1:47:e3:99:fe:3c:b9:98:7c: 5b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:0E:A9:FD:B2:85:71:91:EC:57:07:5D:77:07:2D:BC:16:73:AD:98 X509v3 Authority Key Identifier: keyid:53:6B:F8:DD:CE:80:26:67:37:8F:47:BD:49:54:A9:0B:7C:70:09:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/FA3B5DCAF7A011EEBAC1E03BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.173.0/24 IPv6: 2001:df3:aac0::/48 Signature Algorithm: sha256WithRSAEncryption ae:42:00:fa:3f:44:10:e3:d2:0b:4e:9e:dd:c1:33:ee:db:61: b4:78:75:35:53:ac:4b:40:90:1a:bb:fa:a4:ad:bc:c1:8a:b3: 94:f8:13:37:40:5b:7a:1c:b2:bc:06:1e:a2:90:d5:e1:c5:fd: 4f:22:b2:5f:c5:53:8f:33:53:9d:ea:32:4b:47:b0:b7:ee:03: 59:08:65:ce:34:f6:67:7e:66:05:93:a4:7d:e9:57:bc:df:4c: cc:bb:26:ac:2a:a0:9c:a1:73:f0:79:5b:af:9e:82:2b:34:36: b3:21:47:14:86:e8:1c:4f:28:58:bf:fa:e7:fa:23:75:dc:6c: e1:87:88:4e:d0:3b:a2:66:c6:9f:0c:4c:fd:da:8b:6c:07:67: 68:f9:ae:c2:8e:39:ed:fd:ef:34:ca:87:01:6a:cc:cb:3f:cb: 8f:6a:72:7c:ff:88:53:b9:b1:ba:fb:20:dc:b7:3b:da:97:ff: d1:8c:17:77:57:e7:fa:da:85:9f:01:40:0b:0f:11:1c:26:ca: 0c:8f:bd:cd:ba:b0:4e:66:1f:35:80:62:db:54:d5:bd:5b:99: 71:a5:58:03:26:7e:d4:30:75:68:b5:60:9a:0f:14:4a:19:10: 1e:9d:d2:38:2d:bd:b1:ba:ce:ca:f8:a5:9d:e8:0a:fc:33:16: 30:d3:f8:53 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTg0OTExMC8GA1UEBRMoNTM2QkY4RERDRTgwMjY2NzM3OEY0N0JENDk1NEE5MEI3 QzcwMDlDMTAeFw0yNDA0MTEwMTE1MjZaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MTczOWFlLTk3YjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNlFbFTBErU1ZvvvUVW/d0mKMKbvCwC6uRfIldlZUhZ2ZEig0ic1KKrbGTc3S9 3w6hkfXbumUUPeOwysXZ7SHd16oLkq4yVJmniHMFh8d8ompWrMbistIYngFSLj3M /yQV+ZAQ+wUJ127qgX4KudBVpPdc9VsvE0nj13kDoTGh7UBhPSQSpjY1tr3KnA9i fBlmcab0qbgq41gdZ3jvOOajl8YgFibGRVf+7waKj/Q1j10f3FN9/nadX/uwQufh 622UXm2U8h4BJolIq5ryKWPeFusr1x6aHCPM+PesSDFEtUI3MsxYI1sILmH6i59Q FdD2VZC7vqFH45n+PLmYfFujAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUUw6p/bKF cZHsVwdddwctvBZzrZgwHwYDVR0jBBgwFoAUU2v43c6AJmc3j0e9SVSpC3xwCcEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1ODQ5L0RCQUQzODRFRjc5 RTExRUVBNDVBQUUyQ0M0RjlBRTAyL1UydjQzYzZBSm1jM2owZTlTVlNwQzN4d0Nj RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVTJ2NDNjNkFKbWMzajBlOVNWU3BDM3h3Q2NFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTg0OS9EQkFEMzg0RUY3OUUxMUVFQTQ1QUFFMkNDNEY5QUUwMi9GQTNCNURDQUY3 QTAxMUVFQkFDMUUwM0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAMolrTAPBAIAAjAJAwcAIAEN86rAMA0GCSqGSIb3DQEBCwUA A4IBAQCuQgD6P0QQ49ILTp7dwTPu22G0eHU1U6xLQJAau/qkrbzBirOU+BM3QFt6 HLK8Bh6ikNXhxf1PIrJfxVOPM1Od6jJLR7C37gNZCGXONPZnfmYFk6R96Ve830zM uyasKqCcoXPweVuvnoIrNDazIUcUhugcTyhYv/rn+iN13Gzhh4hO0DuiZsafDEz9 2otsB2do+a7Cjjnt/e80yocBaszLP8uPanJ8/4hTubG6+yDctzval//RjBd3V+f6 2oWfAUALDxEcJsoMj73NurBOZh81gGLbVNW9W5lxpVgDJn7UMHVotWCaDxRKGRAe ndI4Lb2xus7K+KWd6Ar8MxYw0/hT -----END CERTIFICATE-----Generated at Sun Feb 16 15:46:03 2025 by rpki-client